As a user, you may have faced an issue when trying to release emails from the quarantine page, depending on the rules applied you will be able to release the emails, however, there are a few quarantine reasons that will not allow you to release the emails unless this is done by an admin.
By default, messages that are quarantined as high confidence phishing by anti-spam policies, malware by anti-malware policies or Safe Attachments, or by mail flow rules (also known as transport rules) are available only to admins.
As an ordinary user (not an admin), the default capabilities that are available to you as a recipient of a quarantined message are described in the following table:
| Quarantine reason | View | Release | Delete |
|---|---|---|---|
| Anti-spam policies | |||
| Bulk | ✔ | ✔ | ✔ |
| Spam | ✔ | ✔ | ✔ |
| High confidence spam | ✔ | ✔ | ✔ |
| Phishing | ✔ | ✔ | ✔ |
| High confidence phishing | |||
| Anti-phishing policies | |||
| Spoof intelligence protection in EOP | ✔ | ✔ | ✔ |
| Impersonated user protection in Defender for Office 365 | ✔ | ✔ | ✔ |
| Impersonated domain protection in Defender for Office 365 | ✔ | ✔ | ✔ |
| Mailbox intelligence impersonation protection in Defender for Office 365 | ✔ | ✔ | ✔ |
| Anti-malware policies | |||
| Email messages with attachments that are quarantined as malware. | |||
| Safe Attachments in Defender for Office 365 | |||
| Safe Attachments policies that quarantine email messages with malicious attachments as malware. | |||
| Safe Attachments for SharePoint, OneDrive, and Microsoft Teams that quarantines malicious files as malware. | |||
| Mail flow rules (transport rules) | |||
| Mail flow rules that quarantine email messages (directly, not by marking them as spam). |
Comments
0 comments
Please sign in to leave a comment.